From: "Martin A. Brown" <mabrown-lartc@securepipe.com>
To: lartc@vger.kernel.org
Subject: Re: [LARTC] 3 nic -s, 1 lan, 2 internet connections, ip based routing
Date: Thu, 10 Apr 2003 17:26:35 +0000 [thread overview]
Message-ID: <marc-lartc-104999565328661@msgid-missing> (raw)
In-Reply-To: <marc-lartc-104999439526968@msgid-missing>
: I have problem to solve, redhat 6.3 based linux router, 3 network cards,
: eth1, 192.168.10.1 connected to switch, eth0 213.180.9.x connected to
: one adsl bridge and eth0 213.34.9.x connected to another adsl bridge.
Hm! Never heard of RH6.3 before. Probably the successor to RH9.
<snipped>
: So one internal subnet, users from group one
: (192.168.10.2, 192.168.10.3, 192.168.10.4, 192.168.10.5) are allowed use
: eth0 and users from group two 192.168.10.10, 192.168.10.11,
: 192.168.10.12, 192.168.10.13 are allowed to use eth2 for internet
: connection, no load balancing etc is needed, the idea is just one router
: for two separate companies. So i made iptables nat rules:
You need to take advantage of the RPDB. In particular, you may find this
documentation helpful:
http://linux-ip.net/html/adv-multi-internet.html
http://linux-ip.net/html/adv-multi-internet.html#adv-multi-internet-outbound
For some background on route selection:
http://linux-ip.net/html/routing-selection.html
http://linux-ip.net/html/routing-selection.html#routing-selection-adv
Note, that routing and iptables must be synchronized in order for you to
attain the desired result.
If your default route in table main is through 213.34.9.x, then here's a
teaser (you'll need to tweak it a bit to get things right):
# echo 5 link213180 >> /etc/iproute2/rt_tables
# ip rule add from 192.168.30.2 table link213180
...
# ip rule add from 192.168.30.5 table link213180
# ip route show table main \
> | while read ROUTE ; do
> ip route add table link213180 $ROUTE
> done
# ip route change table link213180 default via 213.180.9.x
: Then i found http://lartc.org/howto/lartc.rpdb.multiple-links.html but
: seems this is not 100% what i need, as there is no internal network
: interface included and routing is possible to network, not ip based.
: Is it possible to get it work at all, and if so, then how?
Good luck,
-Martin
--
Martin A. Brown --- SecurePipe, Inc. --- mabrown@securepipe.com
_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
next prev parent reply other threads:[~2003-04-10 17:26 UTC|newest]
Thread overview: 5+ messages / expand[flat|nested] mbox.gz Atom feed top
2003-04-10 17:05 [LARTC] 3 nic -s, 1 lan, 2 internet connections, ip based routing and Sysadmin
2003-04-10 17:26 ` Martin A. Brown [this message]
2003-04-10 18:29 ` [LARTC] 3 nic -s, 1 lan, 2 internet connections, ip based Sysadmin
2003-04-10 19:13 ` Martin A. Brown
2003-04-10 19:53 ` Sysadmin
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=marc-lartc-104999565328661@msgid-missing \
--to=mabrown-lartc@securepipe.com \
--cc=lartc@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.